Home Explore Help
Sign In
ltulloch
/
lox-extensions
1
1
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: main
Branches Tags
lox-extensions
/
src
/
proto
/
update_invite.rs

update_invite.rs 6.3 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180 
  1. /*! A module for the protocol for a user to request the issuing of an updated
    2. 

  2.  * invitation credential after a key rotation has occurred
    3. 

  3. 

  4. 

  5. The user presents their current Invitation credential:
    6. 

  6. - id: revealed
    7. 

  7. - date: blinded
    8. 

  8. - bucket: blinded
    9. 

  9. - blockages: blinded
    10. 

  10. 

  11. and a new Invitation credential to be issued:
    12. 

  12. - id: jointly chosen by the user and BA
    13. 

  13. - date: blinded, but proved in ZK that it's the same as in the invitation
    14. 

  14.   date above
    15. 

  15. - bucket: blinded, but proved in ZK that it's the same as in the Invitation
    16. 

  16.   credential above
    17. 

  17. - blockages: blinded, but proved in ZK that it's the same as in the
    18. 

  18.   Invitation credential above
    19. 

  19. 

  20. */
    21. 

  21. 

  22. #[cfg(feature = "bridgeauth")]
    23. 

  23. use super::super::dup_filter::SeenType;
    24. 

  24. #[cfg(feature = "bridgeauth")]
    25. 

  25. use super::super::BridgeAuth;
    26. 

  26. use super::super::G;
    27. 

  27. use super::errors::CredentialError;
    28. 

  28. use crate::lox_creds::Invitation;
    29. 

  29. use cmz::*;
    30. 

  30. use group::Group;
    31. 

  31. use rand::{CryptoRng, RngCore};
    32. 

  32. use sha2::Sha512;
    33. 

  33. 

  34. const SESSION_ID: &[u8] = b"update_invite";
    35. 

  35. 

  36. muCMZProtocol! { update_invite,
    37. 

  37.     I: Invitation { inv_id: R, date: H, bucket: H, blockages: H },
    38. 

  38.     N: Invitation { inv_id: J, date: H, bucket: H, blockages: H },
    39. 

  39.     I.date = N.date,
    40. 

  40.     I.bucket = N.bucket,
    41. 

  41.     I.blockages = N.blockages,
    42. 

  42. }
    43. 

  43. 

  44. pub fn request(
    45. 

  45.     rng: &mut (impl CryptoRng + RngCore),
    46. 

  46.     I: Invitation,
    47. 

  47.     new_pubkeys: CMZPubkey<G>,
    48. 

  48. ) -> Result<(update_invite::Request, update_invite::ClientState), CredentialError> {
    49. 

  49.     cmz_group_init(G::hash_from_bytes::<Sha512>(b"CMZ Generator A"));
    50. 

  50. 

  51.     let mut N = Invitation::using_pubkey(&new_pubkeys);
    52. 

  52.     N.date = I.date;
    53. 

  53.     N.bucket = I.bucket;
    54. 

  54.     N.blockages = I.blockages;
    55. 

  55. 

  56.     match update_invite::prepare(&mut *rng, SESSION_ID, &I, N) {
    57. 

  57.         Ok(req_state) => Ok(req_state),
    58. 

  58.         Err(e) => Err(CredentialError::CMZError(e)),
    59. 

  59.     }
    60. 

  60. }
    61. 

  61. 

  62. #[cfg(feature = "bridgeauth")]
    63. 

  63. impl BridgeAuth {
    64. 

  64.     pub fn handle_update_invite(
    65. 

  65.         &mut self,
    66. 

  66.         old_pub_key: CMZPubkey<G>,
    67. 

  67.         req: update_invite::Request,
    68. 

  68.     ) -> Result<update_invite::Reply, CredentialError> {
    69. 

  69.         let mut rng = rand::thread_rng();
    70. 

  70.         // Both of these must be true and should be true after rotate_lox_keys is called
    71. 

  71.         if self.old_keys.invitation_keys.is_empty() || self.old_filters.invitation_filter.is_empty()
    72. 

  72.         {
    73. 

  73.             return Err(CredentialError::CredentialMismatch);
    74. 

  74.         }
    75. 

  75. 

  76.         let reqbytes = req.as_bytes();
    77. 

  77.         let recvreq = update_invite::Request::try_from(&reqbytes[..]).unwrap();
    78. 

  78.         match update_invite::handle(
    79. 

  79.             &mut rng,
    80. 

  80.             SESSION_ID,
    81. 

  81.             recvreq,
    82. 

  82.             |I: &mut Invitation, N: &mut Invitation| {
    83. 

  83.                 // calling this function will automatically use the most recent old private key for
    84. 

  84.                 // verification and the new private key for issuing.
    85. 

  85.                 // Recompute the "error factors" using knowledge of our own
    86. 

  86.                 // (the issuer's) outdated private key instead of knowledge of the
    87. 

  87.                 // hidden attributes
    88. 

  88.                 let old_keys = match self
    89. 

  89.                     .old_keys
    90. 

  90.                     .invitation_keys
    91. 

  91.                     .iter()
    92. 

  92.                     .find(|x| x.pub_key == old_pub_key)
    93. 

  93.                 {
    94. 

  94.                     Some(old_keys) => old_keys,
    95. 

  95.                     None => return Err(CMZError::RevealAttrMissing("Key", "Mismatch")),
    96. 

  96.                 };
    97. 

  97.                 let old_priv_key = old_keys.priv_key.clone();
    98. 

  98.                 I.set_privkey(&old_priv_key);
    99. 

  99.                 N.set_privkey(&self.invitation_priv);
    100. 

  100.                 Ok(())
    101. 

  101.             },
    102. 

  102.             |I: &Invitation, _N: &Invitation| {
    103. 

  103.                 let index = match self
    104. 

  104.                     .old_keys
    105. 

  105.                     .invitation_keys
    106. 

  106.                     .iter()
    107. 

  107.                     .position(|x| x.pub_key == old_pub_key)
    108. 

  108.                 {
    109. 

  109.                     Some(index) => index,
    110. 

  110.                     None => return Err(CMZError::RevealAttrMissing("Key", "Mismatch")),
    111. 

  111.                 };
    112. 

  112.                 if self
    113. 

  113.                     .old_filters
    114. 

  114.                     .invitation_filter
    115. 

  115.                     .get_mut(index)
    116. 

  116.                     .unwrap()
    117. 

  117.                     .filter(&I.inv_id.unwrap())
    118. 

  118.                     == SeenType::Seen
    119. 

  119.                 {
    120. 

  120.                     return Err(CMZError::RevealAttrMissing("id", "Credential Expired"));
    121. 

  121.                 }
    122. 

  122.                 Ok(())
    123. 

  123.             },
    124. 

  124.         ) {
    125. 

  125.             Ok((response, (_I_issuer, _N_issuer))) => Ok(response),
    126. 

  126.             Err(e) => Err(CredentialError::CMZError(e)),
    127. 

  127.         }
    128. 

  128.     }
    129. 

  129. }
    130. 

  130. 

  131. pub fn handle_response(
    132. 

  132.     state: update_invite::ClientState,
    133. 

  133.     rep: update_invite::Reply,
    134. 

  134. ) -> Result<Invitation, CMZError> {
    135. 

  135.     let replybytes = rep.as_bytes();
    136. 

  136.     let recvreply = update_invite::Reply::try_from(&replybytes[..]).unwrap();
    137. 

  137.     match state.finalize(recvreply) {
    138. 

  138.         Ok(cred) => Ok(cred),
    139. 

  139.         Err(_e) => Err(CMZError::Unknown),
    140. 

  140.     }
    141. 

  141. }
    142. 

  142. 

  143. #[cfg(all(test, feature = "bridgeauth"))]
    144. 

  144. mod tests {
    145. 

  145.     use crate::mock_auth::TestHarness;
    146. 

  146.     use crate::proto::update_invite;
    147. 

  147. 

  148.     #[test]
    149. 

  149.     fn test_update_invite() {
    150. 

  150.         let mut th = TestHarness::new();
    151. 

  151.         let rng = &mut rand::thread_rng();
    152. 

  152.         let invite = th.bdb.invite().unwrap();
    153. 

  153.         let mut lox_cred = th.open_invite(rng, &invite);
    154. 

  154.         let mig_cred = th.trust_promotion(rng, lox_cred.clone());
    155. 

  155.         lox_cred = th.migration(rng, lox_cred.clone(), mig_cred.clone());
    156. 

  156.         lox_cred = th.level_up(rng, lox_cred.clone());
    157. 

  157.         let issue_invite_cred = th.issue_invite(rng, lox_cred.clone());
    158. 

  158.         let old_pub = th.ba.invitation_pub.clone();
    159. 

  159.         th.ba.rotate_invitation_keys(rng);
    160. 

  160.         let update_invite_request = update_invite::request(
    161. 

  161.             rng,
    162. 

  162.             issue_invite_cred.clone().0,
    163. 

  163.             th.ba.invitation_pub.clone(),
    164. 

  164.         );
    165. 

  165.         assert!(
    166. 

  166.             update_invite_request.is_ok(),
    167. 

  167.             "Update invitation request should succeed"
    168. 

  168.         );
    169. 

  169.         let (request, client_state) = update_invite_request.unwrap();
    170. 

  170.         let update_invite_response = th.ba.handle_update_invite(old_pub, request);
    171. 

  171.         assert!(
    172. 

  172.             update_invite_response.is_ok(),
    173. 

  173.             "Update invite response from server should succeed"
    174. 

  174.         );
    175. 

  175.         let response = update_invite_response.unwrap();
    176. 

  176.         let creds = update_invite::handle_response(client_state, response);
    177. 

  177.         assert!(creds.is_ok(), "Handle response should succeed");
    178. 

  178.         th.verify_invitation(&creds.unwrap());
    179. 

  179.     }
    180. 

  180. }
    181.